
































Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
A foundational overview of insider threats, security protocols, and the handling of classified information within special access programs (saps). it details key elements for identifying critical program information, managing risks to dod assets, and understanding the roles of various security agencies. The document also covers personnel security investigations, clearance processes, and the handling of classified information, making it a valuable resource for those studying national security and information protection.
Typology: Exams
1 / 40
This page cannot be seen from the preview
Don't miss anything!

































Indicators of insider threats
Elements that should be considered in identifying Critical Program
Information
Elements which if compromised could:
Elements that security professional should consider when assessing and managing risks to DoD assets (risk management process)
The three categories of Special Access Programs
acquisition, intelligence, and operations & support
Types of threats to classified information
Insider Threat, Foreign Intelligence Entities (FIE), criminal activities, cyber threats, business competitors
The concept of an insider threat
An employee who may represent a threat to
national security. These threats encompass potential espionage, violent acts against the Government or the nation, and unauthorized disclosure of classified information
The purpose of the Foreign Visitor Program
To track and approve access by a foreign entity to information that is classified; and to approve access by a foreign entity to information that is unclassified, related to a U.S. Government contract, or plant visits covered by ITAR.
Special Access Program
A program established for a specific class of
classified information that imposes safeguarding and access requirements that exceed those normally required for information at the same classification level.
Responsibilities of the Government SAP Security Officer/Contractor Program
Security Officer (GSSO/
CPSO)
classified material.
SAP material to and from Program elements
The five Cognizant
Security Agencies (CSAs)
Department of Defense
(DoD), Director of National Intelligence (DNI), Department of Energy (DoE), Department of Homeland Security (DHS) and the Nuclear Regulatory Commission (NRC).
Cognizant Security Agencies (CSA)s' role in the National Industrial Security Program (NISP).
Establish general industrial security programs and oversee/administer security requirements
Primary authorities governing foreign disclosure of classified military information
Factors for determining
whether U.S. companies are under Foreign Ownership, Control or Influence
(FOCI)
espionage against the U.S. targets
in unauthorized technology transfer
"Classified National Security
Information; Final Rule"
Provides guidance to all government agencies on classification, downgrading, declassification, and safeguarding of classified national security information
Security Violation
Knowing, willful, or negligent action that results in or could be expected to result in loss, suspected compromise, or compromise of classified information
Unauthorized Disclosure
Communication or physical
transfer of classified or controlled unclassified information (CUI) to unauthorized recipient
Three classification levels
TS - grave damage to national security
S - serious damage to national security
C - damage to national security
Single Scope Background Investigation (SSBI)
For military, contractors, and civilians:
· Critical/Special-Sensitive
· TS, "Q" info, war-related plans, policymaking, revenue and funds, SCI, SAPs
· Equivalent to Tier 5
Access National Agency Check with Inquiries (ANACI)
For civilians:
· Noncritical-Sensitive positions
· Confidential/Secret, "L" info, systems containing PII
· Equivalent to Tier 3
National Agency Check with Local Agency and Credit Check (NACLC)
For military and contractors:
· Noncritical-Sensitive
· Confidential/Secret clearance eligibility
· Equivalent to Tier 3
National Agency Check with Inquiries for civilians and contractors:
· Non-Sensitive positions
· Low Risk
· HSPD-12 Credentialing
National Agency Check (NAC)
The fingerprint portion of personnel security investigation (PSI)
The purpose of due process in
Personnel Security Program (PSP)
Ensures fairness by providing subject opportunity to appeal unfavorable adjudicative determination
T/F: A security clearance guarantees that any individual will be granted access to classified information.
False. Individual must also have NTK and sign a SF 312.
T/F: Any individual with an official need to know to conduct assigned duties will be granted a clearance.
False. The granting of a clearance is based on the favorable determination of an individual's integrity, loyalty, and trustworthiness by examining them against the 13 adjudicative guidelines.
T/F: Non U.S. citizens are restricted from gaining access to classified.
False. While non-U.S. citizens are restricted from receiving security clearances, they can gain limited access to classified information through a Limited Access Authorization (LAA). Only goes up to Secret level (NOT TOP SECRET).
T/F: Non-US citizens are restricted from receiving security clearances.
True.
T/F: An individual must have a need for regular access to classified or sensitive information to establish a need for a security clearance.
True.
T/F: Ease of movement within a facility is an acceptable justification for obtaining a security clearance.
False. Seeking ease of movement is not an acceptable justification for obtaining a security clearance.
DoD position sensitivity types
T/F: Civilians in non-sensitive positions may receive security clearances.
False. Only individuals in sensitive positions receive security clearances.
Investigative requirement for a Critical/Special-Sensitive position
Single scope background investigation (SSBI aka T5), SSBI-PR (T5R), or PPR
Investigative requirement for a Non-Critical Sensitive position
ANACI or NACLC (T3)
Revocation
When current security clearance eligibility determination is rescinded
Denial
Initial request for security clearance eligibility is not granted
What is the purpose of the Statement of Reasons (SOR)?
Provide comprehensive and detailed written explanation of why preliminary unfavorable adjudicative determination was made. Can be appealed!
The purpose of intrusion detection systems
To deter, detect, and document unauthorized entry into secured areas
The purpose of barriers
-Define physical limits of installation
-Channel traffic
-Impede access
-Shield activities within installation from direct observation
The purpose of an Antiterrorism Program
Protect DoD personnel, their families, installations, facilities, information, and other material resources from terrorist acts
Force Protection Condition (FPCONS) levels
Measures taken to protect personnel and assets from attack; issued by COCOMs and installation commanders/facility directors
Levels: Normal, Alpha, Bravo, Charlie, Delta
The concept of security-in-depth
Layered and complementary security controls sufficient to deter, detect, and document unauthorized entry and movement within installation/facility.
e-QIP
System used to document personal information from Personnel Security Questionnaire
Personnel Security Investigation (PSI)
The first phase of the security clearance process; used by DoD as standard for uniform collection of relevant and important background information about individual.
A security manager uses this system to communicate with the DoD CAF
This sub-system (used by adjudicators) and JCAVS make up the JPAS/DISS system
A DoD system of record for personnel security clearance information
Scattered Castles
Intelligence Community (IC) Personnel Security Database that verifies personnel security access and visit certifications.
Reinvestigation
Periodic investigation conducted at predetermined intervals; CE supplements reinvestigations of all cleared personnel
True
True or False: Special access requirements are designed to provide an additional layer of security to some of our nation's most valuable assets.
True or False: There is no difference between a threat and a vulnerability.
False. Threats and vulnerabilities are related but distinct. Threats to national security exploit vulnerabilities.
The Executive Order (E.O.) that establishes a uniform Personnel Security Program
DoD 5200.2-R
Implements and maintains the DoD personnel security policies and procedures
USD(I) Memorandum, August 30, 2006
Defines the Adjudicative Guidelines
Scope
This refers to when adjudicators must ensure that an investigation meets the minimum timeframe and element requirements before reviewing the investigation.
Administrative Judge
During due process, military and civilian personnel may request an in-person appearance before this individual.
Termination Briefing
Given employment is terminated, clearance eligibility is withdrawn, or if individual will be absent from duty 60 days or more. Also given to those inadvertently exposed to classified information.
Foreign Travel Briefing
Given to cleared personnel who plan to travel in or through foreign countries, or attend meetings attended by representatives of other countries.
Refresher Briefing
Presented annually to personnel who have access to classified information or assignment to sensitive duties.
Aims of Special Access Programs (SAPs)
Protection Level
Component-level SAP Central Offices
Manage and oversee list of SAP facilities
Exist for each military component, the Joint Chiefs of Staff, Defense Advanced Research Projects Agency (DARPA), and Missile Defense Agency (MDA)
Special Access Program Oversight Committee (SAPOC)
The final SAP approving body chaired by the Deputy Secretary of Defense; make final approval decision
Senior Review Group (SRG)
Principal working-level body executing governance process. Make unanimous recommendation which is forwarded to DepSecDef for decision
SAP Senior Working Group (SWG)
Coordinate, deconflict, and integrate SAPs
DoD Special Access Central Office (SAPCO)
"One voice to Congress"/DoD SAP legislative liaison--> notifies Congress of SAP approval decision
OSD-level SAP Central Offices
Exercise oversight for specific SAP category under their purview:
Acquisition-Office of USD for Acquisition, Technology, and Logistics
Intelligence-Office of USD for Intelligence
Operations & Support-Office of USD for Policy
Authorization, Appropriations, and Intelligence Congressional
Congressional committees granted SAP access
Personnel, information, equipment, facilities, activities, and operations
Antiterrorism Officer (individual involved in PHYSEC)
Responsible for antiterrorism program
CI Support (individual involved in PHYSEC)
Responsible for providing valuable information on the capabilities, intentions, and threats of adversaries
OPSEC Officer (individual involved in PHYSEC)
Analyzes threats to assets and their vulnerabilities
Physical Security Officer (individual involved in PHYSEC)
Management, implementation, and direction of all physical security programs
Law Enforcement (individual involved in PHYSEC)
Must be integrated into intelligence gathering process; part of coordinating emergency responses and criminal incidents on a Federal installation